General
-
Target
202401069ffaa8355fb3568fd29e44330dff781bgandcrab.exe
-
Size
73KB
-
Sample
240107-yam35scffj
-
MD5
9ffaa8355fb3568fd29e44330dff781b
-
SHA1
7a97c4e7ed5552520a834398835d1bd6a68f13d6
-
SHA256
abd25daef8430c18651469d6aac07fb30f1a31844e23038b62c54a233e5ef75c
-
SHA512
5383208c37e0b28b58e48c5222a35a8e9e0f678ec5d9bac63e6eb9fc5100630e5b20f3ac08f995098e12621df54da27e6108da9471af4d95112882e5b4198f0c
-
SSDEEP
1536:i55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rJ:YMSjOnrmBTMqqDL2/mr3IdE8we0Avu5h
Behavioral task
behavioral1
Sample
202401069ffaa8355fb3568fd29e44330dff781bgandcrab.exe
Resource
win7-20231215-en
Behavioral task
behavioral2
Sample
202401069ffaa8355fb3568fd29e44330dff781bgandcrab.exe
Resource
win10v2004-20231215-en
Malware Config
Extracted
gandcrab
http://gdcbghvjyqy7jclk.onion.top/
Targets
-
-
Target
202401069ffaa8355fb3568fd29e44330dff781bgandcrab.exe
-
Size
73KB
-
MD5
9ffaa8355fb3568fd29e44330dff781b
-
SHA1
7a97c4e7ed5552520a834398835d1bd6a68f13d6
-
SHA256
abd25daef8430c18651469d6aac07fb30f1a31844e23038b62c54a233e5ef75c
-
SHA512
5383208c37e0b28b58e48c5222a35a8e9e0f678ec5d9bac63e6eb9fc5100630e5b20f3ac08f995098e12621df54da27e6108da9471af4d95112882e5b4198f0c
-
SSDEEP
1536:i55u555555555pmgSeGDjtQhnwmmB0ybMqqU+2bbbAV2/S2mr3IdE8mne0Avu5rJ:YMSjOnrmBTMqqDL2/mr3IdE8we0Avu5h
Score6/10-
Adds Run key to start application
-
Enumerates connected drives
Attempts to read the root path of hard drives other than the default C: drive.
-